Chapter 2. Concepts
In this chapter
• 2.1 Security Contexts for Type Enforcement
• 2.2 Type Enforcement Access Control
• 2.4 Multilevel Security in SELinux
• 2.5 SELinux Features Familiarization
The details of the SELinux access control mechanism and policy language are extensive and fully described in later chapters. However, the basic concepts and goals of SELinux are fairly simple. In this chapter, we examine the security concepts of SELinux and the motivations behind these concepts. Gaining a conceptual understanding is necessary to effectively use and apply SELinux access controls. This chapter focuses on the primary access control feature of SELinux, type enforcement (TE), although we also ...
Get SELinux by Example: Using Security Enhanced Linux now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.